Security Advisory

CVE-2024-3374

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-14 13:26:42

Last updated 2024-08-01 20:12:06

Assigner mongodb

State PUBLISHED

Description

An unauthenticated user can trigger a fatal assertion in the server while generating ftdc diagnostic metrics due to attempting to build a BSON object that exceeds certain memory sizes. This issue affects MongoDB Server v5.0 versions prior to and including 5.0.16 and MongoDB Server v6.0 versions prior to and including 6.0.5.

← Browse all CVEs View on cve.org ↗